Community

Product DocsMenu

SharePoint Online (Federated - Okta) [Email] Source Quick Setup

  1. Validate that your environment meets the requirements: 

  2. Create a user identity with a dedicated Windows account that has access to all the SharePoint content that you want to index. [SharePoint] or [OneDrive for Business]

    Key parameter Value
    Name You must name your user identity.
    User An Okta SSO recognized account in the username@domain.com form that can see all the content that you want to index.
    Password The corresponding password.

  3. Ensure that the account of your user identity has the appropriate permissions:

    1. For content and permission indexing, incremental refresh, and site collection discovery, the account must have Administrator permission for all SharePoint Online site collections to index, but also the root site collection. [more]

    2. For personal site, user profile, and social tags indexing, the account must be owner of all personal sites collections. [more]

  4. Create an Email security provider. [more]

    Key parameter Value
    Name You must name your security provider.
    Security Provider Type Email (x64)
    User Identity The federated Office 365 user identity you created.

  5. Create a Claims to Email for SharePoint Online security provider.

    Key parameter Value
    Name You must name your security provider.
    Security Provider Type Claims to Email for SharePoint Online
    User Identity The federated Office 365 user identity you created.
    Security Provider The Email security provider you created in step 4.
    Windows Azure Active Directory Module for Windows PowerShell The installation path of the Microsoft Online Services Module for Windows PowerShell. [more]

  6. Install the Windows Azure AD module on the Coveo Master server needed by the Office 365 security provider. [more]

  7. Create an Office 365 security provider. [more]

    Key parameter Value
    Name You must name your security provider.
    Security Provider Type Office 365
    User Identity The federated Office 365 user identity you created.
    Users Security Provider The Claims to Email for SharePoint Online security provider you just created.
    Windows Azure Active Directory Module for Windows PowerShell The installation path of the Microsoft Online Services Module for Windows PowerShell. [more]

  8. Create a SharePoint security provider. [more]

    Key parameter Value
    Name You must name your security provider.
    Security Provider Type SharePoint
    User Identity The federated Office 365 user identity you created.
    Active Directory Security Provider (none)
    Security Provider for SharePoint Users The Claims to Email for SharePoint Online security provider you just created.
    Security Provider for Domain Groups The Office 365 security provider you just created.
    SharePoint Server Url

    URL of the SharePoint Online site in the form https://domain.sharepoint.com/[path]

    where [path] is needed only when you want index a specific site collection, list, etc.

    AuthenticationType SpOnlineFederated
    AdfsServerUrl

    The full path to your SharePoint Online ActiveClientSignInUrl that should be in the form: 

    https://mydomain.okta.com/app/office365/[GUID]/sso/wsfed/active

    You can find your SharePoint Online ActiveClientSignInUrl in Okta, in the sign on instructions of the Microsoft Office 365 application:

    1. With an administrator account, log in into Okta.

    2. In the top menu, click Admin.

    3. In the administration panel, select Applications > Applications.

    4. In the Applications page, click Microsoft Office 365.

    5. In the Microsoft Office 365 page, select the Sign On tab.

    6. In the Sign On tab, under Sign On Methods section, click View Setup Instructions.

    7. The ActiveClientSignInUrl is the value next to ActiveLogOnUri.

    SharePointTrustIdentifier The Relying Party Trust identifier for the SharePoint web application, such as urn:federation:MicrosoftOnline. [more]

  9. Create a SharePoint or OneDrive for Business source. [SharePoint] or [OneDrive for Business]

    Key parameter SharePoint OneDrive for Business
    Name You must name your source (ex.: Claims SharePoint Online Okta or Claims OneDrive for Business Okta).
    Source Type SharePoint (x64) OneDrive for Business
    Addresses The SharePoint Online server URL in the form https://mydomain.SharePoint.com. [more]

    The URL of the SharePoint Online site collection regrouping all the personal sites (in which are located the OneDrives for Business) that you want to index in the form https://domain-my.sharepoint.com. [more]
    Crawling Scope WebApplication N/A
    Authentication Type SpOnlineFederated
    AdfsServerUrl
    (Hidden parameter)

    The same path you entered when configuring the SharePoint security provider (see AdfsServerUrl).

    SharePointTrustIdentifier
    (Hidden parameter)     		The Relying Party Trust identifier for the SharePoint web application, such as urn:federation:MicrosoftOnline. [more]
    Authentication The user identity you created in step 2.
    Security Provider The SharePoint Security provider you created in step 8.

  10. Rebuild the source and validate that documents are indexed.

People who viewed this topic also viewed